3 matches found
CVE-2008-5859
SQL injection vulnerability in index.php in Constructr CMS 3.02.5 and earlier, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the showpage parameter...
CVE-2008-5859
SQL injection vulnerability in index.php in Constructr CMS 3.02.5 and earlier, when registerglobals is enabled and magicquotesgpc is disabled, allows remote attackers to execute arbitrary SQL commands via the showpage parameter...
CVE-2008-5859
CVE-2008-5859 describes an SQL injection in index.php of Constructr CMS 3.02.5 and earlier. When register_globals is enabled and magic_quotes_gpc is disabled, remote attackers can inject arbitrary SQL via the show_page parameter. The affected component is the CMS’s index.php; root cause is improp...